Dear RMs,
I would like to make an update for shadow to fix a bug in the SHA password
encryption method.
I don't think this patch would be required for security reasons (I consider
the current SHA method, with the bug, still more secure as the MD5 password
encryption method), but I would prefer to get it right in stable.
The patch, already applied upstream, is attached.
Together with that update, I would like to backport some patches for the
manpages:
- Document the -r, --system option in the useradd, groupadd, and newusers
manpages.
- Document the -c, --crypt-method and -s, --sha-rounds options in the
newusers manpage.
- Document the -k, --skel option in the useradd manpage.
And document some of the Debian patches (basically indicating that some of
them are now applied upstream).
Would an upload be OK for
* the fix for the SHA password encrypt method
* documentation of options
* documentation of patches
Best Regards,
--
Nekral